CVE-2011-3378

Name of the Vulnerable Software and Affected Versions RPM versions 4.4.x through 4.9.x rpm package (affected versions not specified) rpm-devel (affected versions not specified) rpm-devel-32bit (affected versions not specified) rpm-devel-64bit (affected versions not specified) rpm-32bit (affected versions not specified) rpm-64bit (affected versions not specified) rpm-x86 (affected versions not specified) popt (affected versions not specified) popt-32bit (affected versions not specified) popt-64bit (affected versions not specified) popt-devel (affected versions not specified) popt-devel-32bit (affected versions not specified) popt-devel-64bit (affected versions not specified) popt-x86 (affected versions not specified)

Description The issue allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via an rpm package with crafted headers and offsets that are not properly handled when a package is queried or installed. This is related to the regionSwab function, the headerLoad function, and multiple functions in rpmio/rpmpgp.c. The vulnerability can lead to a violation of confidentiality, integrity, and availability of protected information.

Recommendations For RPM versions 4.4.x through 4.9.x, update to a version after 4.9.x to resolve the issue. For rpm package, consider disabling the vulnerable functions until a patch is available. For rpm-devel, rpm-devel-32bit, rpm-devel-64bit, rpm-32bit, rpm-64bit, rpm-x86, popt, popt-32bit, popt-64bit, popt-devel, popt-devel-32bit, popt-devel-64bit, popt-x86, restrict access to the vulnerable modules to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability for some of the affected packages.